Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3691 6.5 警告
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-31173 2026-04-30 12:10 2026-04-23 Show GitHub Exploit DB Packet Storm
3692 9.8 緊急
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-31177 2026-04-30 12:10 2026-04-23 Show GitHub Exploit DB Packet Storm
3693 9.8 緊急
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-31178 2026-04-30 12:10 2026-04-23 Show GitHub Exploit DB Packet Storm
3694 6.5 警告
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-31179 2026-04-30 12:10 2026-04-23 Show GitHub Exploit DB Packet Storm
3695 9.8 緊急
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-31181 2026-04-30 12:10 2026-04-23 Show GitHub Exploit DB Packet Storm
3696 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-31472 2026-04-30 12:10 2026-04-22 Show GitHub Exploit DB Packet Storm
3697 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-31473 2026-04-30 12:10 2026-04-22 Show GitHub Exploit DB Packet Storm
3698 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-31474 2026-04-30 12:10 2026-04-22 Show GitHub Exploit DB Packet Storm
3699 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-31475 2026-04-30 12:10 2026-04-22 Show GitHub Exploit DB Packet Storm
3700 8.2 重要
Network 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31476 2026-04-30 12:10 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314541 5.4 MEDIUM
Network 		microfocus netiq_access_manager Improper Input Validation vulnerability in OpenText NetIQ Access Manager leads to Cross-Site Scripting (XSS) attack. This issue affects NetIQ Access Manager before 5.0.4.1 and 5.1. CWE-79
Cross-site Scripting 		CVE-2024-4554 2024-09-20 03:15 2024-08-28 Show GitHub Exploit DB Packet Storm
314542 7.1 HIGH
Local 		stripe stripe-cli stripe-cli is a command-line tool for the payment processor Stripe. A vulnerability exists in stripe-cli starting in version 1.11.1 and prior to version 1.21.3 where a plugin package containing a man… CWE-22
Path Traversal 		CVE-2024-45401 2024-09-20 03:12 2024-09-6 Show GitHub Exploit DB Packet Storm
314543 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pktgen: use cpus_read_lock() in pg_net_init() I have seen the WARN_ON(smp_processor_id() != cpu) firing in pktgen_thread_worker()… NVD-CWE-noinfo
CVE-2024-46681 2024-09-20 03:10 2024-09-13 Show GitHub Exploit DB Packet Storm
314544 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: binfmt_elf_fdpic: fix AUXV size calculation when ELF_HWCAP2 is defined create_elf_fdpic_tables() does not correctly account the s… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2024-46684 2024-09-20 03:04 2024-09-13 Show GitHub Exploit DB Packet Storm
314545 6.1 MEDIUM
Network 		mlewand open_link ckeditor-plugin-openlink is a plugin for the CKEditor JavaScript text editor that extends the context menu with a possibility to open a link in a new tab. A vulnerability in versions of the plugin pr… CWE-79
Cross-site Scripting 		CVE-2024-45400 2024-09-20 03:04 2024-09-6 Show GitHub Exploit DB Packet Storm
314546 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails If z_erofs_gbuf_growsize() partially fails on a globa… CWE-787
 Out-of-bounds Write 		CVE-2024-46688 2024-09-20 03:01 2024-09-13 Show GitHub Exploit DB Packet Storm
314547 5.3 MEDIUM
Network 		apple visionos The issue was addressed by suspending Persona when the virtual keyboard is active. This issue is fixed in visionOS 1.3. Inputs to the virtual keyboard may be inferred from Persona. NVD-CWE-noinfo
CVE-2024-40865 2024-09-20 02:58 2024-09-6 Show GitHub Exploit DB Packet Storm
314548 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nfsd: ensure that nfsd4_fattr_args.context is zeroed out If nfsd4_encode_fattr4 ends up doing a "goto out" before we get to check… CWE-665
 Improper Initialization 		CVE-2024-46697 2024-09-20 02:53 2024-09-13 Show GitHub Exploit DB Packet Storm
314549 9.8 CRITICAL
Network 		flycass flycass FlyCASS CASS and KCM systems did not correctly filter SQL queries, which made them vulnerable to attack by outside attackers with no authentication. CWE-89
SQL Injection 		CVE-2024-8395 2024-09-20 02:53 2024-09-6 Show GitHub Exploit DB Packet Storm
314550 4.4 MEDIUM
Local 		tcpdump libpcap In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the… CWE-415
 Double Free 		CVE-2023-7256 2024-09-20 02:53 2024-08-31 Show GitHub Exploit DB Packet Storm